Publication Details
Download |
Roman Weiss, Alexander De Luca
PassShapes - Utilizing Stroke Based Authentication to Increase Password Memorability In NordiCHI 2008: Proceedings of the 5th Nordic Conference on Human-Computer Interaction. Lund, Sweden, October 20 - 22, 2008. ACM, New York, NY, 383-392. DOI= http://doi.acm.org/10.1145/1463160.1463202, ISBN 978-1-59593-704-9. (bib) |
Authentication today mostly relies on passwords or personal identification numbers (PINs). Therefore the average user has to remember an increasing amount of PINs and passwords. Unfortunately, humans have limited capabilities for remembering abstract alphanumeric sequences. Thus, many people either forget them or use very simple ones, which implies several security risks. In this work, a novel authentication method called PassShapes is presented. In this system users authenticate themselves to a computing system by drawing simple geometric shapes constructed of an arbitrary combination of eight different strokes. We argue that using such shapes will allow more complex and thus more secure authentication tokens with a lower cognitive load and higher memorability. To prove these assumptions, two user studies have been conducted. The memorability evaluation showed that the PassShapes concept is able to increase the memorability when users can practice the PassShapes several times. This effect is even increasing over time. Additionally, a prototype was implemented to conduct a usability study. The results of both studies indicate that the PassShapes approach is able to provide a usable and memorable authentication method especially in comparison with other graphical authentication methods. |